IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

IMAGE_FILE_RELOCS_STRIPPED

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

CharLowerBuffW

wsprintfW

UnregisterWait

WriteFile

DebugBreak

FreeLibrary

lstrcmpiA

GetProfileStringA

lstrlenW

OpenEventW

VirtualAlloc

GetCurrentThreadId

FileTimeToSystemTime

lstrlenA

FormatMessageW

OpenFileMappingW

GetLocalTime

LocalAlloc

InterlockedExchangeAdd

LoadLibraryA

UnhandledExceptionFilter

GetTickCount

GetSystemInfo

GetLastError

CreateFileW

GetComputerNameExW

LocalFree

InterlockedExchange

DeleteCriticalSection

Sleep

EnterCriticalSection

MultiByteToWideChar

InitializeCriticalSection

RaiseException

CreateEventW

OutputDebugStringA

LeaveCriticalSection

GetACP

GetSystemTimeAsFileTime

GetCurrentProcessId

GetModuleHandleW

GetCurrentProcess

UnmapViewOfFile

InterlockedIncrement

GetProcAddress

LoadLibraryW

GetModuleFileNameW

lstrcmpW

GetComputerNameW

lstrcpyW

RegisterWaitForSingleObjectEx

MapViewOfFileEx

WideCharToMultiByte

SetEvent

GetModuleFileNameA

ExpandEnvironmentStringsW

InterlockedDecrement

CreateFileMappingW

CloseHandle

DisableThreadLibraryCalls

SetUnhandledExceptionFilter

InterlockedCompareExchange

QueryPerformanceCounter

CreateFileA

GetCurrentThread

TerminateProcess

GetEnvironmentVariableW

_wcsnicmp

sprintf

_ultoa

malloc

wcsrchr

swprintf

_initterm

wcscpy

_vsnprintf

_adjust_fdiv

wcslen

wcscmp

wcsspn

sscanf

qsort

_wcsicmp

wcstoul

strchr

_strcmpi

strrchr

_except_handler3

free

_stricmp

_strnicmp

wcscat

RtlCopySid

NtClose

RtlDowncaseUnicodeString

RtlDeleteTimerQueue

RtlFreeUnicodeString

RtlRunDecodeUnicodeString

RtlInitializeSid

RtlDeregisterWait

RtlCreateTimerQueue

NtSetSecurityObject

RtlDeleteCriticalSection

RtlLookupElementGenericTable

NtQuerySystemTime

RtlEraseUnicodeString

RtlLeaveCriticalSection

RtlAppendUnicodeStringToString

RtlAcquireResourceShared

RtlLookupElementGenericTableAvl

RtlInsertElementGenericTableAvl

NtAllocateVirtualMemory

RtlIntegerToUnicodeString

DbgPrint

RtlUnicodeStringToAnsiString

RtlDeleteElementGenericTable

RtlOemStringToUnicodeString

NtCreateEvent

RtlEnterCriticalSection

RtlFreeSid

RtlVerifyVersionInfo

RtlAcquireResourceExclusive

RtlUniform

RtlEqualDomainName

RtlSubAuthorityCountSid

NtOpenProcessToken

RtlReleaseResource

RtlAddAccessAllowedAce

NtOpenThreadToken

RtlCompareMemory

RtlCreateTimer

RtlConvertSharedToExclusive

RtlFreeAnsiString

RtlPrefixUnicodeString

RtlCreateSecurityDescriptor

RtlTimeToTimeFields

RtlInitializeCriticalSection

NtQueryInformationToken

NtDuplicateObject

RtlInitializeGenericTable

RtlAllocateAndInitializeSid

NtWaitForSingleObject

RtlInitializeResource

RtlInitAnsiString

RtlValidSid

NtAllocateLocallyUniqueId

RtlCopyLuid

RtlCopyUnicodeString

RtlDeleteResource

RtlLengthRequiredSid

NtOpenEvent

RtlSubAuthoritySid

RtlConvertSidToUnicodeString

RtlInitializeGenericTableAvl

RtlCompareUnicodeString

RtlSetDaclSecurityDescriptor

RtlGetElementGenericTable

RtlInsertElementGenericTable

RtlUpcaseUnicodeString

RtlCreateAcl

RtlAnsiStringToUnicodeString

RtlNtStatusToDosError

VerSetConditionMask

RtlEqualUnicodeString

RtlInitUnicodeString

RtlRegisterWait

RtlSystemTimeToLocalTime

NtQuerySystemInformation

RtlEqualSid

RtlTimeFieldsToTime

LsaGetLogonSessionData

LsaFreeReturnBuffer

FreeContextBuffer

CredMarshalTargetInfo

CredUnmarshalTargetInfo

ASN1EncSetError

ASN1objectidentifier_free

ASN1BEREncBitString

ASN1bitstring_free

ASN1BERDecOctetString

ASN1intx2uint32

ASN1BEREncOctetString

ASN1BERDecU32Val

ASN1ztcharstring_free

ASN1octetstring_free

ASN1BERDecOpenType2

ASN1BERDecBitString

ASN1BERDecCharString

ASN1BERDecSXVal

ASN1intxisuint32

ASN1intx2int32

ASN1Free

ASN1BERDecS32Val

ASN1BEREncBool

ASN1BERDecSkip

ASN1DecAlloc

ASN1_CreateModule

ASN1BEREncSX

ASN1CEREncGeneralizedTime

ASN1BERDecNotEndOfContents

ASN1charstring_free

ASN1BEREncOpenType

ASN1BERDecObjectIdentifier

ASN1BERDecEndOfContents

ASN1BEREncS32

ASN1_CloseEncoder

ASN1BERDecZeroCharString

ASN1intx_setuint32

ASN1BEREncEndOfContents

ASN1BERDecExplicitTag

ASN1_CreateEncoder

ASN1intx_free

ASN1BEREncU32

ASN1BEREncCharString

ASN1BEREncObjectIdentifier

ASN1_Decode

ASN1_CreateDecoder

ASN1BERDecGeneralizedTime

ASN1_CloseDecoder

ASN1DecSetError

ASN1_Encode

ASN1_FreeDecoded

ASN1BERDecBool

ASN1BERDecPeekTag

ASN1_FreeEncoded

ASN1BEREncExplicitTag

CDLocateCSystem

CDFindCommonCSystemWithKey

MD5Init

MD5Final

CDLocateCheckSum

CDGenerateRandomBits

CDBuildIntegrityVect

MD5Update

ReportEventW

RegEnumKeyExW

GetTraceLoggerHandle

QueryServiceStatus

CryptAcquireContextW

SystemFunction006

SystemFunction007

OpenSCManagerW

RegQueryInfoKeyW

RegisterEventSourceW

CryptGetHashParam

DeregisterEventSource

RegCreateKeyExW

RegDeleteValueW

OpenProcessToken

FreeSid

RegOpenKeyW

CryptReleaseContext

RegQueryValueExW

GetTokenInformation

CryptDestroyHash

CredUnmarshalCredentialW

CloseServiceHandle

RegSetValueExW

RegOpenKeyExW

SetThreadToken

RegCloseKey

LookupAccountSidW

CryptGetProvParam

RegNotifyChangeKeyValue

RevertToSelf

CryptSetProvParam

OpenThreadToken

CryptHashData

RegisterTraceGuidsW

QueryServiceConfigW

TraceEvent

OpenServiceW

RegConnectRegistryW

AllocateAndInitializeSid

CredFree

CryptCreateHash

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_CNT_UNINITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE